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IN ] CLAIMS: 

A clean version of the pcnduig claims is as follows: 

1 . (Amended) A molhod for securing h transaclion in order to prevent fraudulent 
transactions, said method comprising: 

receiving, prior lo Uic transaction, a secret nmster key from i\ third party, wherein 
ihc master key remains unchanged and is kept sccrc[, and is not altered after the 
iransacliou, the Ihird party storing a copy of the manlcr key; 
receiving a rcqueJit for a digest from a requestor; 
retrieving the master key; 
retrieving unique cHcut information; 
the client information boins associated witli the master key; 
creating the digest by Usishing the unique client infonnation and the master key; 

and 

returning Iho digest and the unique client information to the ixqucstor, wherein 
Ihe digest ;ind the unique client information will be used for transacting with the third 
I party, 

2. The method recited in claim 1 above, wherein the request fuither comprises 
unique rc^juestor infonnation and creating the digcr>t further comprises hashing the 
unique requestor information. 

3. The method recited in claim I above, wherein tlic request includes unique 
merchant information which is used to access the niastei-kcy. 

4. The method recited in claim 1 above, wherein the unique client ijiformation 
includes a reference number, the rcrcrcnce number being one of a plurality of refei^:ncc 
uLunbers provided to the client by ihc. ihird party. 

5. The method recited in claim ! above, wherein creating the digest by hushing is 
performed by a smart card. 
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6. The mclhod recited in c\m\w 1 above further comprises encryi^ing tlie unique 
client iiiformalion prior Lo rclricving the ui^que client inlbrmalion. 

7. The mclhod recited in claim 1 above, wherein Ihe Iransaction is a credit card 
transaction, the third party is a credit card issuer and Ihc requestor is a merchant, further 
wherein the rcqacstor infonnation includes infoimalion describing at least one of a 
merchant idcntillcr which is specific to the credit card issuer, a transaction idenlirier 
which is specific to the credit card issuer and purchase information which is specific to a 
purchase initiated by the client. 

8. (Amended) A method for securing a transaction in order to prevent fraudulent 
transactions, said method comprising: 

initiali/ing a smart card by receiving within the card a secret n^aster key from a 
credit card issuer, Ihcma^ilerkcy bciny kept secret; 

receiving, into the smart card, a data transniission from a merchant, wherein the 
data transmission includes unique merchant infom\iition, and a request for a billing 
digest; 

retrieving unique client infonnation, from the smart card nicmory; 
retrieving the master key, the master key being known to the credit card issuer; 
creating the billing digest by hashing the urdque client information, the master 
key and the unique merchant information onboaixl Ihe smart card; and 

passing ihe billing digest, the unique mcrclianl information and ti\c unique client 
inforjnation to the requestor. 

9. The method recited in claim 8 abovc» wherein the unique client mformation 
includes a reference number, the refcrciice number being one of a plurality of reference 
numbers provided to the client by the credit card ir»suer. 

1 0. Tlic method recited in claim 8 above furtlx r comprises encryptiiig the uniqtie 
client inrormation and the unique merchant inforniarion prior to passing ihc infomiatioii 
to llic jucrchanl. 
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1 1 . (Amended) A method for securing a transaclion in oixlcr to prevent fraudulent 
transactions, said melliod comprising: 

initializing a smart card by receiving within the curd a secret master key from a 
credit card issuer, the master key being kept sccrcl; 

sending a data transmission to the smart card, wherein the data transmission 
includes unique merchant information i^iul a request for a billing digest; 

receiving the billing digest, the unique merchant infomiation and unique client 
infonnation from the smart card, the billing digest being hashed from the unique 
merchant information, unique client information and the master key from the smart card; 

imnsmhting the unique merchant information and unique client information from 
Ihc smart card to a credit card issuer 

rl2. The method recited in claim 1 1 above further comprises receiving a response 
Trom the credit card issuer. 
] 3. (Amended) A method for securing a trans;»etioa in order to prevent fraudulent 
trans^icLions, said method comprising; 

receiving, prior to the transaction, a secret master key from a third p;irty, wherein 
the master key remains unchanged, and is not altered afler Ihc transaction, the third party 
storing a copy of the master key within the third party, the master key being kept secret; 

receiving, by the ihird party, a transaction request from a requestor, wherein the 
rcquc-si includes a digest and unique client infomiiilion; 

the client information being associated with the master key; 
accessing the copy of the ma^sicr key based on the unique client information; 
creating an authorisation digest by hashing the unique client infomialion and the 
copy of ihc master key; 

con^paring, by ihe third party, ihc aut]iori7;ilion digest with the digest from the 
requestor; and 
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rcUnning a response to Ihc requestor from Ihc third party, thcs content of the 
response being based on an outcome of the comparison of the authorization digest with 
the digest from the requestor. 

14. The method recited in claim 13 above, wherein the request includes unique 
requestor information and creating the authorizatioM digest further comprises hashing the 
unique requestor information, 

1 5. Tho n)clhod recited in claim 1 3 above, wherein the unique client information 
includes a reference number, the reference number being one of a plurality of reference 
numbers provided to (he client by the third party. 

16. The method recited in claim 1 5 above further comprises: 
accessing all previously used reference numbers associated with the unique client 

information; 

comparing the previously used reference mtmbers with the reference number 
contained in the unique client informalion; and 

returning a response to the requestor, the content of the response bcmg ba^sed on 
tlio outcome of the comparison of the previously u:;ed reference nnmbers with the 
reference number contained in the unique client information. 

1 7. The method recited in claim 1 3 above, wherein creating the authentication digest 
by hashing is porfonncd by n smart card. 

1 8. Tlie method recited in claim 1 3 above furlliCr comprises decrypting the unique 
clicni inFox-mation prior accessing the master key. 

19. (Amended) The method recited in claim above, wherein the third party is a 
credit card isstier, the transaction is a cLcdit card transaction and the requestor is a 
mci cliant, further wherein the rcquesior inforniation includes infonnation describing at 
least one of a merchant identincr which is specific to the credit card issuer, a transaction 
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idcnli Tier which is specific lo the credit CLird issuer :ind purchase infomialion which is 
specific lo a purchase iiiiliatcd by the client. 

20. (Amended) A method for securing a transacl ion in order to prevent fraudulent 
trnnsaclions, said method comprising: 

generating a billing digest in a CListomcr's smart card, the billing digest being 
haslicd from merchant infonnalionj custonier infonnation and a secret master key; 

receiving the master key from a credit card issuer upon an initialisation of the 
sninit card by the credit card issuer, the master key being associated with the customei" 
information; 

creating an aulhcnticalion (hgcsi by the credit card issuer, wherein the 
aulhcnticatiou digest is hashed from the merchant ijifonnation, customer information and 
a master key associaled with the customer information; 

comparing the authori/alion digest wilh the billing digest; and 
authorizing a transaction based on llic comparison of Ihc authorization digest with 
the billing digest. 

21. (Unchanged) A mcHiod for securing a tranr^uclion comprising: 
indexing a secret master key lo ai\ account (denlificr for an account, wherein the 

account is between a customer and a financial institution; 

providing Ihc master key to the financial institution and a smart card controlled by 
tlic customer; 

pasjiing transaction data through a third paity, wherein the transaction data 
includes at least the customer accouni identifier, Uiird party information and a billing 
digest which is created from the customer account identifier, the third pany infomiation 
anJ ihe master key, 

22. (/Vmendod) A smart card for conducting secure transactions in order to prevent 
fraudulent transactions comprising: 

a input/output mechanism; 
a processor; and 
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a memory containing: 
fintincial accounl informalion; 

a secret miislcr key received upon initial izalion of the smart card, Ihc master key 
remaining unchanged throughout the use of the siTi;srt card, the master key being received 
from a third party; 

functional hashing algorithm; 

an executable application, for executing on the processor, for invoking the 
funclional hafihing algorithm, whcrchi the fiinction.U hashing algorithm creates a digest 
from the financial account information and the ma.<.ier key and further wherein the 
executable upplicatiou transmits, via the input/output mechanism, the digest ajid Ihc 
finanoiul account information to a requestor for approval by the third party, 

23, (Amended) A system for conducting secure transactions in order to prevent 
rrauduletit transactions comprising: 

a client smart card for creating a billing digest from a resident client information, 
a resident secret master key and imported merchant information; 

the master key being received from a fiuaivial iiistitulion upon initialization of the 
snnirt card, the master key remaining unchanged adcr use of the smart card, the inastcr 
key being kept ssccrct, and the master key being associated with the resident client 
infonnation; 

a merchant system for requesting the billing digest and for passing secure 
transaction information and the billing digest to the financial institution, wherein the 
ii MRSJiction information comprises the client infonnation. and the imported merchant 
inlbrmalion; and 

the financial institution for receiving the inmsaction information and billing digest 
ond for authorizing a transaction by: 

accessing a master key stored within tlie fijiancial institution based on the client 
information; 

creating an authorization diiicst from the niastcr key stored in the financial 
in-^iitution , tho client information and the merchant information; and 

comparing the authorization billing digest with thcbilling digest. 
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24. (Anicndcd) A system For securing a Irausactton in order to prevent fraudulent 
lr;insaclioiis comprising: 

receiving means for receiving a secret maskr key from a third parlilion prior lo 
the Iransaclion, tiic master key remaining unchanged after the transaction, the master key 
being kept secret; 

receiving means for receiving a request for u digest from a requestor, 

retrieving means for retrieving llic master key; 

retrieving means for retrieving unique client information; 

0)0 client information being associated with the master key; 

creating means for creating the digest by hashing the unique client information 
and the master key; and 

returning means for returning tlic digest ant! the unique client infonnation to the 
requestor, wherein the digest and the unique client infonnaiion will be used for 
transacting with the third party. 

25. The system recited in claim 24 above, wherein ihc request furtlier comprises 
(. unique requestor information and creating the digest further comprises hashing the 

I p 26. The system recited in claim 24 above, wherein the request includes unique 

merchant information which is used to access the master key. 

27. The system recited in claim 24 above, wherein the unique client information 
iachidcs a reference number, the reference number being one of a plurality of reference 
nuinbers provided to the client by the third party. 

28. Tl)c system recited in claim 24 above, wherein the creating means for creating the 
digest by hashing is performed by a smart card. 

29. The system recited in claim 24 above furtljcr conn^> 'ses encrypting means for 
cncryi^ting the unique client information prior to rctumins^ the unique client information. 
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30. The system recited iti claim 24 above, wherein the transaction is a credit card 
transaction, tlic third party is a credit card issuer the requestor is a merchant, further 
wherein the requestor information inchides infomKition describing at least one of a 
merchant identifier which is specific to the credit card issuer, a transaction identifier 
which is specific lo Ihc credit card issuer and transiiCiion data which is specific to a 
transaction initiated by the chent. 

3 1 . The system recited in claim 24 above further comprises: 

fingeiprliit reading and identification means for reading a fingerprint and 
authorizing a client based on aa identity of a client's fingerprint. 

32. (Amended) A system for securing a transaelion in order to prevent fraudulent 
transactions comprising: 

providing means for providing from a Ihird party a secret master key to a client, 
the niaster key remaining unchanged afler the tran<?action; 

receiving means for receiving a transaction request from a requestor, wherein Uic 
request includes a digest and unique client informoiion, the digest being crcalcd ulili/ing 
tile master key provided lo the client and the unique client information; 

the unique client information being associated with the master key; 

accessing means for accessing, by the third parly, a m;istcr key stored within the 
third parly based on the unique client information; 

creating means for creating an authorization digest by hashing the unique client 
information and the master key; 

coniparijig means for comparing the authori/ation digest with the digest from the 
requestor; and 

reluming moatis for returning a response tc* rlie requestor, the content of the 
rtisponsc being based on the outcome of the comj^.friison of the authori/ation digest with 
the digest from d^c requestor. 
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33. The system recited in claim 32 above, wherein Ihc request includes unique 
requestor infonnation and creating the authorization digest Anther comprises hashing the 
unique requestor inlonnation. 

34. The system recited in claim 32 above, wherein the unique client iiirorniation 
includes a reference number, the reference number being one of a plurality of reference 
nuntbcrs provided lo the client by Uie third paity. 

35. The system recited in claim 34 above further comprises: 
accc5sir^g means for accessing all previously used reference numbers associated 

with the unique client information; 

compating mc^ms for comparing the previously used reference numbers with the 
reference number contained in the unique client information; and 

returning means for returning a response to (he requestor, the content of the 
response being based on the outcome of the comparison of the previously used reference 
f juimbcrs with ihc rL?fcrcnee number contained in the unique client information. 

36. The systci^i recited in claim 32 above, wherein creating the aiitlicntfcation digest 
I by hashing is pei Tonncd by a smart card. 

37. The system recited in claim 32 above further comprises doc-rypting the unique 
client infonnniion prior accessing the master key. 

38. The systci i\ recited in claim 32 above, whct cin the transaction is a credit card 
transaction, the third party is a credit card issuer and the requestor is a merchant, further 
wherein the requestor information includes infonv-uion describing at least one of a 
merchant identifier which is spocinc to the credit card issuer, a transaction identifier 
which is specific to Uic credit card issuer and lrani;aciion data which is specific to a 
transaction initi^Med by dtc client. 
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39, (Amended) A computer progi'mn product for securing a irajisaction in order lo 
prevent fraiidLilcnt transactions embodied on a computer readable medium comprising: 

providing insUiictiona Tor providing from a third party a secret master key, the 
master key remaining unchanged aflcr the transaction; 

receiving instructions for receiving a request for a digest from a requestor; 

retricvii^g instnictions for retrieving the mirUer key; 

vetvicving instructions for retrieving unique client information; 

the master key being associated with the client informalion; 

crcnling instructions for creating the digest by hashing the unique client 
infonnation and the inastcr key; and 

returning instructions for returning the digc^st and llie unique client information to 
the requestor, wherein the digest and the unique chcnt information will be used for 
transacting wilii the third party. 

40. (Amended) A computer program product for securing a transaction in order lo 

f prevent fraudulent transactions anbodicd on a computer readable medium comprising: 

r initializing instnictions for initializing a sn.:irt card by receiving within ihc card a 
secret master key from a credit card issuer; 
receiving instructions for receiving, into the smart card, a data transmission from 
a merchant, wherein the data transmission includes unique merchant information, and a 
request for a hilling digest; 

retrieving instructions for retrieving unique client information, from the sn^.ari 

card memory; 

the unique client information being associated with the master key; 

retrieving instructions for retrieving the nr^stcr key, the master key being 
provided by ilic credit card issuer; 

creating insti'uelions for creating the billing digest by hashing the unique clicin 
information, ilic masler key and the unique mcrch'^nl information onboard the smart card; 
and 

passit»g instcuclions for passing the bilting digest, the unique mcrchani 
infomialion i^nd the unique client information lo i!ic requestor. 
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